Chengyu Song

June 7, 2009

Get system call address from SSDT

One difference in Qebek from other existing virtualization based honeypot monitoring tool is that I want to ‘hook’ the function of system service instead of the […]